ICYMI: 2026-06-19
Latest Headlines
Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain
The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution
Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites
CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
From Assistive to Agentic: The AI Shift That’s Redefining Threat Management
Forget Data Leakage: Shadow AI’s Real Threat Is Access Control
Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data
Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC
15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown
Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure
CISA Adds LiteSpeed cPanel Plugin Vulnerability to KEV List Following Active Exploitation
Chrome Extensions’ Critical Flaws Let Attackers Easily Compromise Millions of Browsers
Critical WordPress Plugin Vulnerability Exposes 1 Million Sites to File Deletion Attacks
eFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks
Microsoft June 2026 Update Bug Exposes Recycle Bin Filenames in Deletion Dialog
HazyBeacon Weaponizes AWS Lambda Function URLs for Stealth Command-and-Control Relays
Hackers Abuse Third-Party Okendo Reviews Script to Spread SmartApeSG Malware Campaign
INC Ransomware Uses Rust-Based Windows and Linux/ESXi Encryptors in New Attacks
CISA Urges Hardening Fortinet Devices Following FortiBleed Attack
Klue OAuth breach victim list grows as Icarus hackers claim attack
Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin
Texas govt data breach exposes over 3 million driver’s licenses
Every AI Agent Is an Identity. Most Organizations Don’t Treat Them That Way
Webinar: How attackers bypass MFA and how defenders can respond
Microsoft: June 2026 Windows updates break Recycle Bin prompts
CISA: Splunk Enterprise flaw actively exploited, patch by Sunday
NY man charged after harassing college student with AI-generated nudes
CISA warns Fortinet users to secure devices after FortiBleed leak
– MTZ